Executive Summary:
The article, Malware spread on Skype taps victim PCs to mint bitcoins, details a malware attack that has been transmitted through the communication software, Skype. Hackers are infecting individual computers with malware that is designed to use that computer’s processing power to mine for bitcoin units. The article explains that these bitcoin units, an alternative form of currency, are legitimately mined by computers that solve cryptographic proof-of-work problems. The resulting block of data is then submitted and verified at which point the submitter is granted fifty bitcoins. However, hackers are using malware to force infected computers to do the work for them. In this way, they are able to use the resources of the infected computers rather than their own. The article states that the security firm, Kaspersky Lab, released a statement that before the attack was announced, there were over 2,000 clicks per hour, which means there were potentially over 2,000 new computers infected and used to mine for bitcoins each hour.
Analysis:
Malware attacks are difficult to block because the user often assists the hacker in infecting his or her own computer. In this article, Kaspersky Labs noted that there were over 2,000 clicks per hour on the bit.ly URL that was hosting the malware. Users are often targeted with an infected email or webpage link that once clicked will infect the user’s computer. Being aware of the methods of malware transmission can be an enormous asset in protecting a computer from malware. However, having an effective anti-virus and anti-malware program that is up-to-date and properly configured is also a good control to have in place. A good anti-malware program will prompt the user when he or she attempts to click on a link to be sure they trust the source. In many cases, this will cause the user to pause and back away from a suspicious link. In other cases, the anti-malware program can identify the risk once the link has been clicked and block the attack. This article provides a good scope for understanding the widespread lack of effective security controls by noting the 2,000 clicks per hour. That number is equivalent to 2,000 users who did not know better than to click on a suspicious link. Having properly educated users is an extremely important aspect of proper controls for security. Anti-malware software is also an effective control that can help tremendously, however the ultimate security rests in the hands of the user.
The article, Malware spread on Skype taps victim PCs to mint bitcoins, details a malware attack that has been transmitted through the communication software, Skype. Hackers are infecting individual computers with malware that is designed to use that computer’s processing power to mine for bitcoin units. The article explains that these bitcoin units, an alternative form of currency, are legitimately mined by computers that solve cryptographic proof-of-work problems. The resulting block of data is then submitted and verified at which point the submitter is granted fifty bitcoins. However, hackers are using malware to force infected computers to do the work for them. In this way, they are able to use the resources of the infected computers rather than their own. The article states that the security firm, Kaspersky Lab, released a statement that before the attack was announced, there were over 2,000 clicks per hour, which means there were potentially over 2,000 new computers infected and used to mine for bitcoins each hour.
Analysis:
Malware attacks are difficult to block because the user often assists the hacker in infecting his or her own computer. In this article, Kaspersky Labs noted that there were over 2,000 clicks per hour on the bit.ly URL that was hosting the malware. Users are often targeted with an infected email or webpage link that once clicked will infect the user’s computer. Being aware of the methods of malware transmission can be an enormous asset in protecting a computer from malware. However, having an effective anti-virus and anti-malware program that is up-to-date and properly configured is also a good control to have in place. A good anti-malware program will prompt the user when he or she attempts to click on a link to be sure they trust the source. In many cases, this will cause the user to pause and back away from a suspicious link. In other cases, the anti-malware program can identify the risk once the link has been clicked and block the attack. This article provides a good scope for understanding the widespread lack of effective security controls by noting the 2,000 clicks per hour. That number is equivalent to 2,000 users who did not know better than to click on a suspicious link. Having properly educated users is an extremely important aspect of proper controls for security. Anti-malware software is also an effective control that can help tremendously, however the ultimate security rests in the hands of the user.